Language Selection

English French German Italian Portuguese Spanish

felosi's blog

How to install ffmpeg on centos/rhel, The simple way!

Filed under
Howtos

Easy way to get ffmpeg going on your box. Source : http://nix101.com/2007/06/07/how-to-install-ffmpeg-on-centosrhel/

Quick way to stop apache and connect floods with csf

Filed under
Howtos

Quick and simple way to mitigate small to large apache floods. source : http://nix101.com

Grsecurity Patched Kernel Install Script For Redhat based Pentium 4 servers

Filed under
Howtos

After a lil work getting the config right for s hosting/shell server I finally came up with the script that will patch, compile, and install the gresecurity patched kernel. You just run the shell script and it will download the kernel and patch, patch the kernel, download the config, and then compile and install.

The config I got made up is for Pentium4/Xeon/Celeron based servers.

Looking for people to share server with

Filed under
Just talk

The last few months I have been using a server for security research, kernel testing, mod security rules testing, firewalls, dos protection, you name it. As well as to host my ircd and site. We basically have the server for development and testing although it is ran just like any other hosting server. In order to do the research we do we must keep a server.

Cpanel Wins for Security, A Short Review

Filed under
Reviews

This is a short review I wanted to write about cpanel. I never have been the greatest fan of it since it is only compatible with apache1 and all but after using other control panels I realized how secure and practical cpanel is for a multiple user server and hosting enviorment.
Read it here http://www.evolution-security.com/modules.php?name=News&file=article&sid=291

CentOS and Redhat, Best for the Server

Filed under
Reviews

Short review of CentOS and Red Hat and how Ubuntu is not gonna push anyone out of the server and enterprise market especially these two.

Fix Apf ipt_state error on new kernels

Filed under
Howtos

For those using apf on the new kernels and getting ipt_state error, since 2.6.15 they changed the name of them kernel modules and apf does not recognize them. Do not enable monokern as some people suggest, this will screw up your passive ftp and will not work good

GrSecurity Kernel Script

Filed under
Howtos

GrSecurity kernel upgrade and patch script. Downloads the 2.6.17.7 kernel and the latest grsecurity patch and then unpacks and patches the kernel, after that it tells you what to do next.

Mod Security rules.

Filed under
Howtos

After extenisve testing I have found what I think are the best mod security rules you can have for a basic server with average php scripts.

Quick Guide to Securing a Lamp Server

Filed under
Howtos

In the last few years on the Internet the price of dedicated servers have went down and more people are beginning to use them for their sites, game servers, or small hosting companies. With this comes as I was talking about in my last article inexperienced admins. Lots of people I spoke too are too intimated by the linux shell and try to administer their server completely from the control panel.

HOWTO: Installing Grsecurity patched kernel in debian/ubuntu

Filed under
Howtos

Walkthrough for compiling and installing grsecurity patched kernel on debian based systems.

first post- kernels and whatnot

Filed under
News

Well I signed up at the site after I seen they posted on of my howtos which I am thankful for. It was the one on the grsecurity patched kernel. I think it should help quite a few people as there are so many local root exploits out now and most distro's security and dev teams are doing nothing about it.

Syndicate content

More in Tux Machines

Canonical and Ubuntu

  • RADV & ANV Vulkan Drivers Are One Command Away On Ubuntu 17.04
    Similar to Ubuntu 16.10, the Mesa Vulkan drivers are not present by default on new Ubuntu installations. But to get the packaged Vulkan drivers, simply sudo apt install mesa-vulkan-drivers. When running some tests on Ubuntu 17.04 this weekend, I was a bit surprised to see that Mesa's Intel ANV and Radeon RADV drivers aren't present by default -- since it's been one year since the Vulkan 1.0 debut and the ANV/RADV drivers have matured a lot during this time. There's also more and more software becoming available that can make use of Vulkan while personally wishing for more Linux desktops to push Vulkan. But it's easy to install the Vulkan drivers as mentioned. Similarly, vulkan-utils isn't installed by default.
  • Wishful Thinking Of Non-Free Software Makers
    Regardless of my personal problems with non-Free software, the world has largely accepted FLOSS to SAS’s chagrin. I guess Canonical should be glad except they barely mention “Linux” on their site. What’s with that? They are like some purveyors of non-Free software that talk about the benefits of their products without even mentioning what the software actually does as if that’s best kept secret…
  • 2017: Should Linux Benchmarking Still Be Mostly Done With Ubuntu?
    Every year or so it comes up how some users believe that at Phoronix we should be benchmarking with Antergos/Arch, Debian, or [insert here any other distribution] instead of mostly using Ubuntu for our Linux benchmarking. That discussion has come back up in recent days. In our forums and Twitter the past few days, that discussion seems to have come up by some users requesting I use a different Linux distribution than Ubuntu as the main test platform for all of our benchmarking. As I've said before, Ubuntu is used given it's the most popular when it comes to Linux desktop usage as well as significant usage of it on servers / workstations / cloud. But I have no tie to it beyond focusing upon using the Linux distribution that's used by the most folks for obtaining the maximum relevance to users, gamers, and enthusiasts reading said articles. And for allowing easy comparisons / out-of-the-box expectations. On my main production system I still use Fedora Workstation as my personal favorite and in the basement server room there are a variety of operating systems -- both BSDs and Linux and from Antergos to openSUSE and Debian.

Linux Devices, Tizen, and Android

Leftovers: OSS

  • SAP buys into blockchain, joins Hyperledger Project
  • foss-north speaker line-up
    I am extremely pleased to have confirmed the entire speaker line-up for foss north 2017. This will be a really good year!
  • Chromium/Chrome Browser Adds A glTF Parser
    Google's Chrome / Chromium web-browser has added a native glTF 1.0 parser. The GL Transmission Format, of course, being Khronos' "3D asset delivery format" for dealing with compressed scenes and assets by WebGL, OpenGL ES, and other APIs. There are glTF utility libraries in JavaScript and other web-focused languages, but Google adding a native glTF 1.0 parser appears to be related to their VR push with supporting VR content on the web. Their glTF parser was added to Chromium Git on Friday.
  • Sex and Gor and open source
    A few weeks ago, Dries Buytaert, founder of the popular open-source CMS Drupal, asked Larry Garfield, a prominent Drupal contributor and long-time member of the Drupal community, “to leave the Drupal project.” Why did he do this? He refuses to say. A huge furor has erupted in response — not least because the reason clearly has much to do with Garfield’s unconventional sex life. [...] I’ll unpack the first: open-source communities/projects are crucially important to many people’s careers and professional lives — cf “the cornerstone of my career” — so who they allow and deny membership to, and how their codes of conduct are constructed and followed, is highly consequential.
  • Hazelcast Releases 3.8 – The Fastest Open Source In-Memory Data Grid
  • SecureDrop and Alexandre Oliva are 2016 Free Software Awards winners
  • MRRF 17: Lulzbot and IC3D Release Line Of Open Source Filament
    Today at the Midwest RepRap Festival, Lulzbot and IC3D announced the creation of an Open Source filament. While the RepRap project is the best example we have for what can be done with Open Source hardware, the stuff that makes 3D printers work – filament, motors, and to some extent the electronics – are tied up in trade secrets and proprietary processes. As you would expect from most industrial processes, there is an art and a science to making filament and now these secrets will be revealed.
  • RApiDatetime 0.0.2

Security Leftovers

  • NSA: We Disclose 90% of the Flaws We Find
    In the wake of the release of thousands of documents describing CIA hacking tools and techniques earlier this month, there has been a renewed discussion in the security and government communities about whether government agencies should disclose any vulnerabilities they discover. While raw numbers on vulnerability discovery are hard to come by, the NSA, which does much of the country’s offensive security operations, discloses more than nine of every 10 flaws it finds, the agency’s deputy director said.
  • EFF Launches Community Security Training Series
    EFF is pleased to announce a series of community security trainings in partnership with the San Francisco Public Library. High-profile data breaches and hard-fought battles against unlawful mass surveillance programs underscore that the public needs practical information about online security. We know more about potential threats each day, but we also know that encryption works and can help thwart digital spying. Lack of knowledge about best practices puts individuals at risk, so EFF will bring lessons from its comprehensive Surveillance Self-Defense guide to the SFPL. [...] With the Surveillance Self-Defense project and these local events, EFF strives to help make information about online security accessible to beginners as well as seasoned techno-activists and journalists. We hope you will consider our tips on how to protect your digital privacy, but we also hope you will encourage those around you to learn more and make better choices with technology. After all, privacy is a team sport and everyone wins.
  • NextCloud, a security analysis
    First, I would like to scare everyone a little bit in order to have people appreciate the extent of this statement. As the figure that opens the post indicates, there are thousands of vulnerable Owncloud/NextCloud instances out there. It will surprise many just how easy is to detect those by trying out common URL paths during an IP sweep.
  • FedEx will deliver you $5.00 just to install Flash
    Bribes on offer as courier's custom printing service needs Adobe's security sinkhole